Senior Application Security Engineer (SCA/SAST)
Senior Application Security Engineer (SCA/SAST)
Scale Security. Empower Engineers. Shape the Future.
Location: UK - Remote
The Mission: At Trimble, we aren't just building software; we’re transforming the way the world works. We are looking for a Senior Application Security Engineer who is more than a technical expert—you are a strategist and a catalyst for secure innovation. You will lead the charge in open-source security (SCA) and static analysis (SAST) across a massive global footprint, ensuring that security is a seamless part of the developer experience.
Why This Role?
Global Influence: You won't just be "fixing bugs." You will be the architect of a global security strategy that impacts 99% of our engineering teams.
Strategic Autonomy: Lead the vision for our SCA and SAST roadmaps. You have the seat at the table to decide how we evolve.
Innovation at Scale: Work across diverse tech stacks—from .NET and Java to Go and Python—integrating security directly into the heartbeat of our CI/CD pipelines.
How You’ll Make an Impact
Strategic Leadership
Act as the global SME for SCA and SAST, turning complex security requirements into scalable, automated solutions.
Optimize our security tooling to be "developer-first," slashing false positives and focusing engineering energy on what truly matters.
Shape the organizational approach to open-source security and license compliance.
Engineering Excellence
Embed security into the DNA of the SDLC by collaborating with architects and product owners worldwide.
Automate everything. You’ll build the "guardrails" that allow our developers to move fast without breaking things.
Mentor the next generation of security talent and lead through influence across cross-functional teams.
Vision & Advisory
Stay ahead of the curve. You’ll evaluate emerging security tech and proactively keep Trimble at the cutting edge.
Conduct threat modeling and architectural reviews to kill vulnerabilities before they are ever coded.
The Profile We’re Looking For
The Architect: 5+ years in AppSec with a deep, battle-tested mastery of SCA and SAST implementation at an enterprise level.
The Polyglot: You speak the language of developers. Whether it’s Java, C#, Python, or Go, you can read the code and provide real remediation paths.
The Integrator: You live in the pipeline. You have hands-on experience with GitHub Actions, Jenkins, Azure DevOps, or GitLab CI.
The Communicator: You can translate "security risk" into "business value" for stakeholders and "clear action" for engineers.
Education: Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
How to Apply: Please submit an online application for this position by clicking on the ‘Apply Now’ button located in this posting.
Join a Values-Driven Team: Belong, Grow, Innovate.
At Trimble, our core values of Belong, Grow, and Innovate aren't just words—they're the foundation of our culture. We foster an environment where you are seen, heard, and valued (Belong); where you have an opportunity to build a career and drive our collective growth (Grow); and where your innovative ideas shape the future (Innovate). We believe in empowering local teams to create impactful strategies, ensuring our global vision resonates with every individual. Become part of a team where your contributions truly matter.
If you need assistance or would like to request an accommodation in connection with the application process, please contact careers@trimble.com.